OWASP A05: XXE + Deserialization — Cybersecurity Lab